mysql-mcp-server
by athavala
Overview
This server provides a FastMCP interface to interact with a MySQL database, allowing retrieval of database schema and execution of arbitrary SQL queries.
Installation
python C:/Python/test/selfstudy/databaseMCP.pyEnvironment Variables
- DB_HOST
- DB_USER
- DB_PASSWORD
- DB_NAME
- DB_PORT
Security Notes
The `query_data` function is critically vulnerable to SQL injection as it executes arbitrary SQL queries directly without any input validation, sanitization, or query parameterization. This allows attackers to perform any operation on the database (e.g., data exfiltration, deletion, modification). Additionally, the server uses insecure default database credentials (`root`/`password`) if environment variables are not set, posing a significant risk in non-production or misconfigured environments.
Similar Servers
mcp-mysql-server
Provides an MCP-compliant interface for AI models to securely interact with a MySQL database for CRUD operations, schema inspection, and performance analysis.
Dynamic-Smart-MCP
An intelligent FastMCP 2 server that converts natural language questions into SQL queries or API requests for any SQL database or OpenAPI-defined API using AI.
mysql_mcp_server
This server provides a Model Context Protocol (MCP) interface to a MySQL database, enabling AI models to execute SQL queries and retrieve database schema information.
mcp_sql_demo
Provides secure, multi-database access for LLMs to inspect MySQL schemas and execute SQL queries, supporting both read and configurable write operations with fine-grained schema-specific permissions.